Specialist- Information Security GRC
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
flydubai is seeking an Information Security GRC Specialist to support cybersecurity governance, risk management, and compliance activities. The role involves developing policies, conducting risk assessments, managing audits, and ensuring alignment with standards like ISO 27001, NIST, and GDPR.
Key Skills for This Role
Responsibilities
- Develops, implements, and maintains information security governance frameworks, policies, and procedures
- Conducts risk assessments and facilitate risk management activities, including identification, evaluation, and mitigation of security risks
- Supports compliance efforts with relevant regulations and standards such as DESC ISR, ISO 27001, NIST, GDPR, PCI DSS
- Manages and coordinates internal and external audits related to information security and compliance
- Maintains the organization's risk register and track remediation plans to closure
- Collaborates with IT, legal, and business units to embed GRC best practices across the organization
- Prepares and presents risk and compliance reports for senior management and key stakeholders
- Facilitates training and awareness programs to promote understanding of information security policies and compliance requirements
- Supports the assessment, monitoring, and mitigation of vendor and third party risks
- Monitors emerging regulations, standards, and industry trends related to cybersecurity governance and compliance
- Coordinates and documents business impact assessments (BIAs) and support the development of security risk treatment plans
- Participates in the design and implementation of security metrics and KPIs to measure compliance and control effectiveness
Requirements
- Bachelor's degree in Information Security, Cybersecurity, Information Technology, or a related field
- Minimum of 7 years experience in information security governance, risk management, and compliance
- Proven skills in risk assessments, audit support, policy implementation, and hands on third party risk management
- Familiarity with standards such as DESC ISR, ISO 27001, NIST, and GDPR
- Relevant certifications preferred (e.g., CISM, CRISC, CISA, CISSP)
- Fluent in English
Full Job Posting
Main Objective of Role
- To support the organization’s cybersecurity governance, risk management, and compliance activities by coordinating and executing Governance, Risk, and Compliance (GRC) processes to ensure alignment with regulatory requirements, industry standards, and internal policies, ultimately strengthening the
Key Responsibilities
- Develops, implements, and maintains information security governance frameworks, policies, and procedures.
- Conducts risk assessments and facilitate risk management activities, including identification, evaluation, and mitigation of security risks.
- Supports compliance efforts with relevant regulations and standards such as DESC ISR, ISO 27001, NIST, GDPR, PCI DSS, and others.
- Manages and coordinates internal and external audits related to information security and compliance.
- Maintains the organization's risk register and track remediation plans to closure.
- Collaborates with IT, legal, and business units to embed GRC best practices across the organization.
- Prepares and presents risk and compliance reports for senior management and key stakeholders.
- Facilitates training and awareness programs to promote understanding of information security policies and compliance requirements.
- Supports the assessment, monitoring, and mitigation of vendor and third party risks to ensure compliance with organizational policies and regulatory requirements.
- Monitors emerging regulations, standards, and industry trends related to cybersecurity governance and compliance.
- Coordinates and documents business impact assessments (BIAs) and support the development of security risk treatment plans.
- Participates in the design and implementation of security metrics and KPIs to measure compliance and control effectiveness.
Qualifications
- Bachelor's Degree (3+ years)
- Bachelor’s degree in Information Security, Cybersecurity, Information Technology, or a related field.
- Fluent in English
- Minimum of 7 years experience in information security governance, risk management, and compliance, preferably in regulated industries such as aviation or banking.
- Proven skills in risk assessments, audit support, policy implementation, and hands on third party risk management.
- Familiarity with standards such as DESC ISR, ISO 27001, NIST, and GDPR is essential.
- Years with qualifications: 7 9 years
- Relevant certifications preferred (e.g., CISM, CRISC, CISA, CISSP).
Competencies
- Customer Focus
- Teamwork
- Effective Communication
- Personal Accountability & Commitment to achieve
- Resilience & Flexibility (Can do attitude)
ISR Requirements
- Reads and complies with the ISR policies of the Company and diligently reports any weakness or incidents to the respective Line Manager or the Information Security team.
- Completes all required ISR awareness sessions and follows associated guidelines in the day to day business operations.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at flydubai
Aircraft Mechanic B (Avionics) AMC
Dubai, UAE
flydubai is seeking an Aircraft Mechanic B (Avionics) to perform scheduled and unscheduled base maintenance on aircraft. The role requires an Associate Degree, aircraft maintenance qualification, and 3-5 years of commerc
Aircraft Mechanic B (Airframe) AMC
Dubai, UAE
flydubai is seeking an Aircraft Mechanic B (Airframe) to perform scheduled and unscheduled base maintenance on aircraft. The role requires an Associate Degree, aircraft maintenance qualification, and 3-5 years of commerc
Aircraft Mechanic B (Engine) AMC
Dubai, UAE
flydubai is seeking an Aircraft Mechanic B (Engine) to perform scheduled and unscheduled base maintenance on aircraft. The role requires an Associate Degree, aircraft maintenance qualification, and 3-5 years of commercia
Senior Planning Officer (Line)
Dubai, UAE
flydubai is looking for a Senior Planning Officer (Line) to provide functional support to the technical planning team and ensure the fleet is maintained per the approved maintenance programme. The role involves monitorin
Technical Records Officer
Dubai, UAE
flydubai is seeking a Technical Records Officer to support continuing airworthiness by managing aircraft records in compliance with regulatory standards. The role involves reviewing maintenance data, administering log-bo
Supervisor - Airport Services (Outstations)
Dubai, UAE
flydubai is seeking an Airport Services Supervisor to oversee and coordinate airport services agents and ground handlers at outstations. The role ensures high-quality passenger service in check-in, boarding, special serv
Senior Planning Officer (Line)
, UAE
flydubai seeks a Senior Planning Officer (Line) to support technical planning for aircraft maintenance. The role involves monitoring work packages, conducting audits, and ensuring compliance with maintenance programs. Ca
Technical Records Officer
Dubai, UAE
flydubai is hiring a Technical Records Officer to support continuing airworthiness by managing aircraft records in compliance with regulatory standards. Responsibilities include reviewing maintenance data, administering
Aircraft Mechanic B (Avionics) AMC
Dubai, UAE
Aircraft Mechanic B (Airframe) AMC
Dubai, UAE
Aircraft Mechanic B (Engine) AMC
Dubai, UAE
Senior Planning Officer (Line)
Dubai, UAE
Technical Records Officer
Dubai, UAE
Supervisor - Airport Services (Outstations)
Dubai, UAE
Senior Planning Officer (Line)
, UAE
Technical Records Officer
Dubai, UAE